Browse Source

Fix ownership of octavia_rsyslog log directory

The octavia_rsyslog container should not use the octavia user and group
since the rsyslog image doesn't know about that user. It should use
root and have a dedicated log directory on the host to avoid mixing
ownerships with the octavia containers that are running as octavia user.

Change-Id: Ie7eb7905eb33235fc73f94b9e84f553394e951fd
Closes-Bug: #1907260
changes/61/766161/1
Gregory Thiemonge 10 months ago
parent
commit
ffd86b3f2c
  1. 5
      deployment/octavia/octavia-health-manager-container-puppet.yaml

5
deployment/octavia/octavia-health-manager-container-puppet.yaml

@ -140,7 +140,7 @@ outputs:
preserve_properties: true
permissions:
- path: /var/log/octavia
owner: octavia:octavia
owner: root:root
recurse: true
docker_config:
step_2:
@ -191,7 +191,7 @@ outputs:
-
- /var/lib/kolla/config_files/octavia_rsyslog.json:/var/lib/kolla/config_files/config.json:ro
- /var/lib/config-data/puppet-generated/octavia:/var/lib/kolla/config_files/src:ro
- /var/log/containers/octavia:/var/log/octavia:z
- /var/log/containers/octavia-amphorae:/var/log/octavia:z
environment:
KOLLA_CONFIG_STRATEGY: COPY_ALWAYS
- {}
@ -205,3 +205,4 @@ outputs:
mode: "{{ item.mode }}"
with_items:
- { 'path': /var/log/containers/octavia, 'setype': container_file_t, 'mode': '0750' }
- { 'path': /var/log/containers/octavia-amphorae, 'setype': container_file_t, 'mode': '0750' }
Loading…
Cancel
Save